Authenticated session management across multiple electronic devices using a virtual session manager
First Claim
1. A method of maintaining a web session for a user across multiple electronic devices, the method comprising:
- by a user agent of a first electronic device that is being used by a user;
discovering a plurality of electronic devices including a second electronic device that is in a communication range of the first electronic device;
presenting, to the user, identifiers associated with each of the discovered plurality of electronic devices, including an identifier for the second electronic device;
determining that the second electronic device includes a virtual session manager;
receiving a first authentication request, wherein the first authentication request comprises a request to access a first web resource for the user at the first web resource;
transmitting the first authentication request to an endpoint device via the virtual session manager of the second electronic device so that the virtual session manager can present a grant token to the endpoint device or receive the grant token from the endpoint device without the first electronic device having any access to the grant token;
receiving, from the virtual session manager, a first access token in response to the first authentication request, wherein the first access token has a life that is shorter than a life of the grant token such that the grant token is relatively long-lived and the first access token is relatively short-lived;
storing the first access token in a memory; and
using the first access token to access the first web resource and establish or maintain a virtual session with the first web resource, wherein one or more parameters associated with the user'"'"'s use of the first web resource are automatically sent to maintain or automatically reconnect to the virtual session so that the virtual session is uninterrupted without manually entering the parameters.
3 Assignments
0 Petitions
Accused Products
Abstract
A virtual session manager of an electronic device maintains a web session for a user across multiple electronic devices. The virtual session manager will receive an authentication request from a first electronic device that is in a communication range of the virtual session manager'"'"'s device. The virtual session manager will transmit the authentication request to an endpoint device, and it will either present a grant token to or receive a grant token from the endpoint. The virtual session manager will receive a first access token from the endpoint device. The virtual session manager will transmit the first access token to the first electronic device so that the first electronic device can establish a virtual session with the first web resource without having any access to the grant token.
112 Citations
22 Claims
-
1. A method of maintaining a web session for a user across multiple electronic devices, the method comprising:
by a user agent of a first electronic device that is being used by a user; discovering a plurality of electronic devices including a second electronic device that is in a communication range of the first electronic device; presenting, to the user, identifiers associated with each of the discovered plurality of electronic devices, including an identifier for the second electronic device; determining that the second electronic device includes a virtual session manager; receiving a first authentication request, wherein the first authentication request comprises a request to access a first web resource for the user at the first web resource; transmitting the first authentication request to an endpoint device via the virtual session manager of the second electronic device so that the virtual session manager can present a grant token to the endpoint device or receive the grant token from the endpoint device without the first electronic device having any access to the grant token; receiving, from the virtual session manager, a first access token in response to the first authentication request, wherein the first access token has a life that is shorter than a life of the grant token such that the grant token is relatively long-lived and the first access token is relatively short-lived; storing the first access token in a memory; and using the first access token to access the first web resource and establish or maintain a virtual session with the first web resource, wherein one or more parameters associated with the user'"'"'s use of the first web resource are automatically sent to maintain or automatically reconnect to the virtual session so that the virtual session is uninterrupted without manually entering the parameters. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
11. A method of maintaining a web session for a user across multiple electronic devices, the method comprising:
by a virtual session manager of a second electronic device; receiving, from a first electronic device that is in a communication range of the second electronic device, a first authentication request, wherein the first authentication request comprises a request to access a first web resource, and wherein a plurality of electronic devices including the second electronic device was discovered by the first electronic device and identifiers associated with each of the discovered plurality of electronic devices, including an identifier of the second electronic device, were presented to the user by the first electronic device; transmitting the first authentication request to an endpoint device; if the first authentication request comprises a request to connect to an existing session with the first web resource including a grant token when transmitting the first authentication request to the endpoint device, otherwise receiving the grant token from the endpoint device for a new session, and in either case not providing the first electronic device with any access to the grant token; receiving, from the endpoint device, a first access token in response to the first authentication request, wherein the first access token; has a life that is shorter than a life of the grant token such that the grant token is relatively long-lived and the first access token is relatively short-lived, and is configured to grant a user access to the first web resource; and transmitting the first access token to the first electronic device so that the first electronic device can establish or connect to a virtual session with the first web resource, wherein one or more parameters associated with the user'"'"'s use of the first web resource are sent to the first electronic device so that the first electronic device can reconnect to the first web resource as a continuation of a previous virtual session. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
20. A method of maintaining a web session for a user, comprising:
by one or more endpoint devices; receiving a first authentication request, wherein; the first authentication request comprises a request by a user agent of a first electronic device that is being used by a user to access a first web resource, and the first authentication request is received from a second electronic device rather than the first electronic device; determining that the second electronic device includes a virtual session manager for the user and that the virtual session manager includes a grant token and the first electronic device does not have access to the grant token, and wherein a plurality of electronic devices including the second electronic device was discovered by the first electronic device and identifiers associated with each of the discovered plurality of electronic devices, including an identifier of the second electronic device, were presented to the user by the first electronic device; confirming that the grant token is valid; and transmitting a first access token to the second electronic device, wherein the first access token is configured to grant the user agent access to the first web resource, and wherein one or more parameters associated with the user'"'"'s use of the first web resource are sent to the first electronic device so that the first electronic device can reconnect to the first web resource as a continuation of a previous virtual session. - View Dependent Claims (21, 22)
Specification